Set automountServiceAccountToken when service account is disabled

[ZeynelKoca]

Proposal

When setting serviceAccount.created: false, the deployment still includes spec.template.spec.automountServiceAccountToken: true. Security scanning tools like ARMOsec see this as a security risk.

When serviceAccount.created: false, we should set spec.template.spec.automountServiceAccountToken: false

References

No response

[gitkent]

@ZeynelKoca Thanks for raising this. Can you please provide PR?

[JulesdeCube]

Hello, I created a MR for this !69.